Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/72cyHQXqUGZ1p9YrAsGliU52ax8.roa
File: 72cyHQXqUGZ1p9YrAsGliU52ax8.roa (raw, json)
Hash identifier: mCa6V0JZKPGCyET2CbzNhRf+wOiBfvJiack9ekSRZLQ=
Subject key identifier: EF:67:32:1D:05:EA:50:66:75:A7:D6:2B:02:C1:A5:89:4E:76:6B:1F
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01857102F6D7AE1BEA885125E2D9DE2DD381
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/72cyHQXqUGZ1p9YrAsGliU52ax8.roa
Signing time: Mon 02 Jan 2023 05:44:57 +0000
ROA not before: Mon 02 Jan 2023 05:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.241.210.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:f6:d7:ae:1b:ea:88:51:25:e2:d9:de:2d:d3:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef67321d05ea506675a7d62b02c1a5894e766b1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8a:8f:22:e9:aa:44:c3:31:ff:a3:77:3c:d2:
ef:90:37:46:97:79:43:30:b5:99:e8:7c:7e:0b:df:
3f:98:91:67:91:c4:ee:9c:cf:b9:17:f8:74:c1:a9:
e7:7e:e5:0e:55:a3:0a:e6:c7:63:11:f2:ff:31:78:
11:32:2a:d0:56:73:ac:d1:ce:d1:3e:36:bf:56:53:
d6:43:b7:02:ba:57:63:e4:f5:03:6e:25:67:16:db:
31:97:30:c9:45:cf:12:ee:6e:f3:28:d6:b8:5d:eb:
10:f7:1c:32:86:98:75:0d:9c:a0:da:41:7d:d1:3c:
27:4e:66:b7:ba:59:a9:49:90:d3:2f:cd:9f:f1:69:
67:ac:e2:81:c1:bf:29:bd:73:9a:5c:9e:28:20:6e:
34:87:39:dd:80:52:ec:1a:1b:1d:83:07:af:de:c1:
86:81:97:af:6c:e2:4d:84:da:16:2c:5c:fd:f4:b5:
20:78:f3:bf:66:24:c0:b1:49:f7:cd:23:76:d3:8c:
01:f0:b8:67:49:db:45:41:33:05:88:79:e9:b2:56:
51:5f:cc:81:a0:aa:4d:a6:f6:70:20:1d:8c:6c:28:
c3:25:a6:6b:0c:54:9d:ef:52:dc:48:32:1c:2f:14:
b4:a3:d9:4d:aa:a4:52:11:83:ae:cb:27:3a:e4:98:
09:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:67:32:1D:05:EA:50:66:75:A7:D6:2B:02:C1:A5:89:4E:76:6B:1F
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/72cyHQXqUGZ1p9YrAsGliU52ax8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.210.0/23
Signature Algorithm: sha256WithRSAEncryption
98:11:17:53:3d:09:6c:f9:31:1a:29:60:49:bb:fb:0f:a4:8e:
b9:da:1d:94:f8:2d:b8:2c:e2:50:45:9c:fd:d2:a9:95:0b:e0:
e3:80:24:b7:c8:93:05:c4:f5:c6:8a:8d:d7:fb:56:c3:e4:f4:
38:1c:37:9a:95:c9:d8:05:59:6a:f9:46:08:14:d0:28:1b:bd:
79:2c:61:59:7a:cb:13:a9:45:ad:77:9a:9a:eb:41:80:03:2a:
f5:d4:92:d4:01:f6:b6:9f:7f:a7:dc:c2:94:3a:16:70:61:e1:
a3:d0:b0:ed:f2:30:18:e8:a1:62:33:ce:10:3f:e0:38:74:49:
f2:a2:49:2a:8a:da:43:d1:03:e6:b6:fd:67:32:ab:a9:a5:9c:
f1:3a:38:6e:92:82:bd:f6:6c:ef:fd:3d:5a:22:d8:83:2e:af:
5a:97:51:00:4d:37:5a:4e:bc:b6:67:de:2d:6a:63:01:6f:ce:
84:21:06:eb:95:dd:02:48:d4:5f:a3:5e:6a:1b:fc:fd:bd:62:
58:2d:c1:e2:46:4d:87:a9:78:7c:d4:68:bb:e3:f4:05:66:5b:
9a:48:d9:74:d5:de:e4:ef:95:be:fd:41:0a:c1:a6:5d:cb:4b:
b9:88:83:10:e9:34:77:52:ba:85:bd:db:7b:ad:f8:99:41:d2:
ca:f8:54:3b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxAvbXrhvqiFEl4tneLdOBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjMwMTAyMDU0NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjY3MzIxZDA1ZWE1MDY2NzVhN2Q2MmIwMmMxYTU4OTRlNzY2YjFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYqPIumqRMMx/6N3PNLvkDdGl3lD
MLWZ6Hx+C98/mJFnkcTunM+5F/h0wannfuUOVaMK5sdjEfL/MXgRMirQVnOs0c7R
Pja/VlPWQ7cCuldj5PUDbiVnFtsxlzDJRc8S7m7zKNa4XesQ9xwyhph1DZyg2kF9
0TwnTma3ulmpSZDTL82f8WlnrOKBwb8pvXOaXJ4oIG40hzndgFLsGhsdgwev3sGG
gZevbOJNhNoWLFz99LUgePO/ZiTAsUn3zSN204wB8LhnSdtFQTMFiHnpslZRX8yB
oKpNpvZwIB2MbCjDJaZrDFSd71LcSDIcLxS0o9lNqqRSEYOuyyc65JgJcQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO9nMh0F6lBmdafWKwLBpYlOdmsfMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvNzJjeUhRWHFVR1oxcDlZckFzR2xpVTUyYXg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBufHSMA0G
CSqGSIb3DQEBCwUAA4IBAQCYERdTPQls+TEaKWBJu/sPpI652h2U+C24LOJQRZz9
0qmVC+DjgCS3yJMFxPXGio3X+1bD5PQ4HDealcnYBVlq+UYIFNAoG715LGFZessT
qUWtd5qa60GAAyr11JLUAfa2n3+n3MKUOhZwYeGj0LDt8jAY6KFiM84QP+A4dEny
okkqitpD0QPmtv1nMquppZzxOjhukoK99mzv/T1aItiDLq9al1EATTdaTry2Z94t
amMBb86EIQbrld0CSNRfo15qG/z9vWJYLcHiRk2HqXh81Gi74/QFZluaSNl01d7k
75W+/UEKwaZdy0u5iIMQ6TR3UrqFvdt7rfiZQdLK+FQ7
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:53 2023 by rpki-client on console-ams.rpki-client.org